[oss] [Lab 4] Solutions
Radu Caragea
sinaelgl at gmail.com
Tue Nov 3 23:08:11 EET 2015
Hello everyone,
I made some (rather brief) walkthroughs for the tasks in lab 4.
Instead of using plain old gdb I used gdb-peda [1] for a better
visualization of the stack, registers and currently executed
instructions. You might find some useful tricks in the casts.
- overflow-ptr [2]
- off-by-one [3]
- overflow-address [4] (including the solution when you don't have an
exit imported in the PLT which requires knowing some basic ROP
exploitation)
Feel free to ask for any clarifications.
[1] https://github.com/longld/peda
[2] https://asciinema.org/a/46zon1aztzskxvf2o71wmqz3b
[3] https://asciinema.org/a/ab2szanw5m7yj625hunfi9xsf
[4] https://asciinema.org/a/30eg4nxmv0zt13b81xgh8zz09
More information about the oss
mailing list